VoIP Honeypot Architecture

Author

Nassar, Mohamed ; State, Radu ; Festor, Olivier

Author_Institution

LORIA - INRIA Lorraine, Villers-les-Nancy

fYear

2007

fDate

May 21 2007-Yearly 25 2007

Firstpage

109

Lastpage

118

Abstract

Voice over IP (VoIP) or telephony services over Internet announces a new revolution in the telecommunication world tor its management simplicity and cost reduction. VoIP security extends the existent risk range of IP protocols and infrastructures and introduces new attacks as well. Threats identification and standardization, secure signaling and media architectures, as well as intrusion detection and prevention mechanisms are currently under debate in the research community. We propose in this article a SIP (Session Initiation Protocol) specific honeypot We describe its design and implementation. We detail the inference mechanism which classifies the received messages. We show how the model investigates about a received call and raises an appropriate conclusion.

Keywords

Internet telephony; computer network management; security of data; transport protocols; IP protocols; VoIP honeypot architecture; VoIP security; cost reduction; intrusion detection; intrusion prevention; media architectures; secure signaling; session initiation protocol; telephony services over Internet; threats identification; threats standardization; voice over IP; Authentication; Availability; Bandwidth; Computer crime; Floods; Internet telephony; Intrusion detection; Privacy; Protocols; Web server;

fLanguage

English

Publisher

ieee

Conference_Titel

Integrated Network Management, 2007. IM '07. 10th IFIP/IEEE International Symposium on

Conference_Location

Munich

Print_ISBN

1-4244-0798-2

Electronic_ISBN

1-4244-0799-0

Type

conf

DOI

10.1109/INM.2007.374775

Filename

4258527